|summit_session_deliverable_name1 = [http://www.owasp.org/index.php/OWASP_Common_Vulnerability_List#tab=Vulnerability_List_.28DRAFT.29 Debating the vulnerability list] and deliver the first version of the project.

+

|summit_session_deliverable_name1 = Debating the vulnerability list and deliver the first version of the project.

There are many OWASP projects like OWASP Testing Guide, OWASP Code Review Guide, OWASP Developers Guide, etc which discuss on how to look for and remediate various vulnerabilities in a web application. For e.g., people using OWASP Testing Guide to test for vulnerabilities in their application can go through a list of vulnerabilities and test for it but there is no easy way for them to cross reference to dev guide to jump to a specific section and be able to access the relevant information quickly. These vulnerabilities are discussed as individual list in all the guides and there is no easy way to cross-reference all of them.

OWASP Common Vulnerability List will be a lightweight list, which will contain only the vulnerability ID, category, vulnerability name and a brief description. The main objective of this list is to provide a common platform for other guides and tools to provide a link to each other.

1. Serve as a common list to all other OWASP initiatives (Dev Guide, Testing Guide, CR Guide, etc) which has any reference to web application vulnerabilities (just like OWASP common numbering scheme).
2. Can be referenced by various open source and commercial tools as the list of vulnerabilities being identified or for any other purpose.
3. Provides a clear requirement for PCI and other compliance laws